OVH updates

md/debian_server_setup.md

@@ -56,7 +56,9 @@ chown -R ${MYUSER}:users /home/${MYUSER}/.ssh
 
 ### Disable root Login
 
-> **Note**: modern Debian SSH sets root login to SSH key only, this section may not be necessary
+> **Note** modern Debian SSH sets root login to SSH key only, this section may not be necessary
+
+> **OVH** their cloud-init opens up password SSH and allows the user to sudo without password, see `/etc/ssh/sshd_config.d/50-cloud-init.conf` and `/etc/sudoers.d/90-cloud-init-users`
 
 **If the above is successful** and you are capable of gaining full root privileges via the non-root SSH session using sudo, now disable root logins in SSH from the outside world for an additional security layer. The `root` account still remains usable, just not via _direct_ SSH access.
 
@@ -95,7 +97,7 @@ apt-get update
 echo "iptables-persistent iptables-persistent/autosave_v4 boolean true" | debconf-set-selections
 echo "iptables-persistent iptables-persistent/autosave_v6 boolean true" | debconf-set-selections
 echo "unattended-upgrades unattended-upgrades/enable_auto_updates boolean true" | debconf-set-selections
-apt-get install sysstat unattended-upgrades iptables-persistent man less vim rsync bc net-tools git strace nftables logrotate
+apt-get install sysstat unattended-upgrades iptables-persistent man less vim rsync bc net-tools git strace nftables logrotate wtmpdb
 ```
 
 The `smem` package will pull in a lot of X dependencies due to an embedded recommendation, install it while disabling that feature. This utility can be used to quickly query memory usage (including swap) on the memory constrained cloud server: